THREAT OPS › CVEs › CVE-2026-21643
CVE-2026-21643 — Fortinet FortiClient EMS SQL Injection Vulnerability
Fortinet FortiClient EMS contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP requests.
Vulnerability details
- Affected productsFortiClient EMS
- KEV remediation due2026-04-16
Related reporting
- April 2026 CVE Landscaperecordedfuture